Overview

overview

10

Static

static

3

a14104c1a5...18.exe

windows7-x64

10

a14104c1a5...18.exe

windows10-2004-x64

7

$1/$OUTDIR...er.exe

windows7-x64

7

$1/$OUTDIR...er.exe

windows10-2004-x64

7

$PLUGINSDI...ns.dll

windows7-x64

3

$PLUGINSDI...ns.dll

windows10-2004-x64

3

$PLUGINSDI...em.dll

windows7-x64

3

$PLUGINSDI...em.dll

windows10-2004-x64

3

2611067143.html

windows7-x64

1

2611067143.html

windows10-2004-x64

1

contact-do...g.html

windows7-x64

1

contact-do...g.html

windows10-2004-x64

1

home.js

windows7-x64

3

home.js

windows10-2004-x64

3

home1099482986.html

windows7-x64

1

home1099482986.html

windows10-2004-x64

1

home1259317828.html

windows7-x64

1

home1259317828.html

windows10-2004-x64

1

index1449123078.html

windows7-x64

1

index1449123078.html

windows10-2004-x64

1

Analysis

  • max time kernel
    117s
  • max time network
    131s
  • platform
    windows7_x64
  • resource
    win7-20240611-en
  • resource tags

    arch:x64arch:x86image:win7-20240611-enlocale:en-usos:windows7-x64system
  • submitted
    12-06-2024 16:03

Sharing

Copy URL
Twitter E-mail
Report Analysis Logs

General

  • Target

    2611067143.html

  • Size

    4KB

  • MD5

    250d3404348dcab3d26c3f5d945b2817

  • SHA1

    abe992ff2636ae70367a893cb289ef741b9850fb

  • SHA256

    4faba6277b74fc4f8c3fb5810621d0efc7262435b0b737cb685c8a0db17d32ae

  • SHA512

    2e17e8f2f1fedb4f7583275d15bdb777a6e0b7900ef3f5d665b2e10696f021a3df9df1a2ad6df99c8c35c0639ba6604657cc07ff6977dfe53639694f88579795

  • SSDEEP

    96:UQLHgGzwHhGoPxnxMLHkNLMcbtDALLPTBD:UQTgyXoZnxMTkdbqLLPVD

Score
1/10

Malware Config

Signatures

  • Modifies Internet Explorer settings 1 TTPs 41 IoCs
    adwarespyware
  • Suspicious use of FindShellTrayWindow 1 IoCs
  • Suspicious use of SetWindowsHookEx 6 IoCs
  • Suspicious use of WriteProcessMemory 4 IoCs

Processes

  • C:\Program Files\Internet Explorer\iexplore.exe
    "C:\Program Files\Internet Explorer\iexplore.exe" C:\Users\Admin\AppData\Local\Temp\2611067143.html
    1⤵
    • Modifies Internet Explorer settings
    • Suspicious use of FindShellTrayWindow
    • Suspicious use of SetWindowsHookEx
    • Suspicious use of WriteProcessMemory
    PID:2456
    • C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
      "C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE" SCODEF:2456 CREDAT:275457 /prefetch:2
      2⤵
      • Modifies Internet Explorer settings
      • Suspicious use of SetWindowsHookEx
      PID:2104

Network

MITRE ATT&CK Enterprise v15

Replay Monitor

Loading Replay Monitor...

Downloads

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c3e295753f2dbe6b77aa30374cfaa955

    SHA1

    402419e2259987f92b0c8cee620a5696825fb029

    SHA256

    ae5ece9225cec67f47d9510afcf535c03efe74a9e04d8276a0f5dfea2066d0d0

    SHA512

    6b6b5a982625088883dee98becc4814d6fb89ccd260046fc5b04df47d2d8f960c65200bd2e13c0a52391c957415c470634a6bc68f592bc149856f00526e4e8d8

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    08dbcfb28ae84583baf214b1ac1bb424

    SHA1

    81b17470f83488d2434f93b529f540430b50bb09

    SHA256

    9a5e0969e3ec33fbb4c9cc0d5ff2ae02a84e1d6eac74179f32cbd567f941868f

    SHA512

    1e1e630c4d2413d90ecec85c15e8b3f705121706acc40af8a7d5024a6d189f71b9b1b6ae78fed7488165c1e48e47a46effa47ca24bc6b6d8aacd7e9dffddf7e5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    af1369566dbcc5794a9e1af75251ad6f

    SHA1

    3dfe508a8904ad4c44821fdb06a26d006544e891

    SHA256

    8f09f683ca416b5a062cb45c38af887ac85e92920d4d62cadac6c26402f598a2

    SHA512

    6631de9359fef185cde9a8dcc76a74dc30f17533b7ec9d282a58153def971f607d4a468df2b7f5b1adac1cc669121be533245d5ef3af8aca734021c6f36a440f

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    6334200085a96dd983e3a2ce66cf3823

    SHA1

    081e6c2da3ed4c139c80aba99b201c3dc91e067d

    SHA256

    40d065d59ecf540da56fece05ab805601c49e48c729700cf83ded004d9c25751

    SHA512

    61adfb91d7e7b0f745d2af0b04cb0e06072e61db4f4f5ac4de9be5b8ac3a7de542a625bf948b8ea9f6b9b7b8459a8802c426730ed5b2f130ebaedf8de8ec8895

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    a89069d6d37f31ad3a6ae7a81a517d0a

    SHA1

    1e02edb66d3c2b07ed7a6aeabd1f400fd05dff0f

    SHA256

    02ebba30bd67879a1bce4a59f1148bfab50626660ccde6e086ae0d76b63e97fc

    SHA512

    2b3a1b28edaefdce20846dfa5f6509948f8a7834644c47836c423db60f4877bd3d4426ce21e4d5b51348396c22d9d89705a9a18bfedb82edc58764b32d700316

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    4c2d9bb0bf0b552405327d2627d35bdd

    SHA1

    dd98be1fc6ce46d88a6d25fe6abd784e6cdc910a

    SHA256

    3a1cc258950e4dccffdfe49d741e53876084fbf967df59893d5dc0c234c0a7ba

    SHA512

    05848eb275a9029015c2adef4bc8255cf1f7e3ba5e05e94a4be1e30869e0da0e861d20aba4c5efb825d0d8d764ede0d8b64d791b8593e08c2a13ea48aa13afd5

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0483caf1592c8bae63a02f9c29588edb

    SHA1

    01e7ca61402bccf54bcd29d5a6cb9cf795830d13

    SHA256

    a0821ec76c677fbbca2854478f41701e1d1d8361e60b7c092d46422cd70d8222

    SHA512

    3f9035c3830a6e84a12df3d048da2d5304ab24778e7a0b4a53bff8c36119e8873c1200d613213deb1fc35b267b44980ce52d03bfe19051d51ffab3dd13ec759c

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    526557d3fabbdc202da9ecdce5bbb2e4

    SHA1

    37ef5e9eb376630b94776b1edf14b78c210b7e61

    SHA256

    7af984a004b1bad2973ca9394beb2a756974e3301735d3129e68cb4498099c5f

    SHA512

    5e216038251d7b4eaa0698b2a1c49ff2ad7565b45036613ef7f5f1462efcc5bc3a01a10feab00fc36dd9e1594ae2387119514d9d956bdea526296e056e8679db

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    11e8dbdb9cbb8e46709a4390f911c324

    SHA1

    8024a324e92b749c7b00842b6080b26c1e85decc

    SHA256

    508ea381ffea2ca38726e148f229ebe69b9b3654dd8ccf2c044bf9b8236488a8

    SHA512

    25ef7100a076d2fa8be1d95c9f20d22fa07213ccc8a0ea48d322fd1b6d1475758753b2de6a6a2f2af986c643f9bd2aff4d02833f11efa4caedb1c6533551c158

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    aee379bd6ee9084ac2522d5d2788c265

    SHA1

    e499e503b668275c605149ee3e1b251e9c49484a

    SHA256

    22c60db6e857871b0346d28837fecc17a103092a4b8604fbd2fe845b91d72e62

    SHA512

    720b64d4bf961e482862cc1ab325ef145749248fda1d2901e76820c91cc1032ea5259e14badf721b95da10b81d12c70b7c8d4e2f59453e7db1f0b90b9ce28887

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    c4f1c825fafd25bc0823b9e667e9ad00

    SHA1

    a8166a3521f173f07dfba8c77ada1a081f991677

    SHA256

    77527ffba4a794cfeb0b2996e4fbd82d3a9777830217ebbfc709e64dfc1e3096

    SHA512

    ccd4c29004289a546cf8b511a48d146dfe8f11cd10a0bec82ceba3c5f92f73d5605db175cab6848ff463a11e2fa8fbb1a0c44be381c33bb923d2694838373c61

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    d11b806576eb77901ea2455e8434d120

    SHA1

    6cd60643cb88a6792a1473ff2a699656d4dce27a

    SHA256

    88ed193d8f7226e8a7050734a12a8cbdef0ff3cca59fc6ba8f2cf87d527cb86d

    SHA512

    cb96e73eabfaea411ed88f97384f6c23640e77c55f29d7cd33a0971c19a7d04fd37b893cd0fdca9298671b31ba096d323ceece1b4010ea83ef8f2c077dcaee7a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    50ed6ac8ccf46d667234637fb19342f2

    SHA1

    4597797cc12ccdba8807ded9f1e5dc9a3c7c9981

    SHA256

    c50c6e0d8fa65bb238c18131261360c69712f119894a81dcb5ad4652cc9c0de1

    SHA512

    9fc8be406f7293dc2c28212ec62c60117e7555d0391c83d155c9c7078cebb0377dff9c4a1aff96ac8015c711d86b5a11c7dad6f96de4685124735bfcf4717990

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0ab964170c75263d64673a56be6bc86f

    SHA1

    72539f0bbab8379bdd320254a5a57d97cef6b19f

    SHA256

    f12ff8a3dfff9d1778fc1d87445a5cf3a41f456db2a0180d352e070205902fc8

    SHA512

    2bb68f6b785ce9678b97a6cd1a0731d2c6def8fadd8c082611fe510ebabeb008796d011eaa464c0736ee8d467746c48b52db4b203cc9ad1c4a8fc2062fbab608

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    ec725623da6c607fb5db28e19300b97a

    SHA1

    5919eca6528f26de211408cd095db432c6724c24

    SHA256

    52bd8e1b422374d9885e5a125300e430ad001b6dfff0d29d627b0a51b763d1f8

    SHA512

    458b9dd60e619a4b8a3109ac52454afa6593cc37cab2217dc8e32f8b5bc76a3fd77df2cb1e965554ab1352e906f7da2ad5bd7df660d7f6a7ebc8612f9b4b887a

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    fb915dad7c3f0622878a5941064fa44e

    SHA1

    33b0b2da94f2634c9a2f491e0634a24175188b09

    SHA256

    faa41ac82edff4063256dd584268865f21d5b02094b236f73cc2414e9a62f812

    SHA512

    4301545d3d8d1f08938269a64ccaa7eff7a2a4241004e8b89db1fab7d5c4f56ab5bd95c3d42a8be276f1fac0d159de68b970b9dc3e562d2cf39d7839e65ce664

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    0d76ef03b670bb167f63dcd56651e00d

    SHA1

    16de268e6246e506c727d94d24a65b131770db4b

    SHA256

    6141d62578902c132ae2048da672c9257a95dcbfcc95c6b3c428ff4981ad8474

    SHA512

    008f2c33a73b8c8d73842329ec32cc32e07ca67c5da02135a4247b7749fe7f63d912bc6784729e4241f8eb128c2bc69888199ea7d551754e079bcf18c2a33da2

    Download Submit

  • C:\Users\Admin\AppData\LocalLow\Microsoft\CryptnetUrlCache\MetaData\94308059B57B3142E455B38A6EB92015
    Filesize

    342B

    MD5

    7b839dcca35e3634592531d9375c75e4

    SHA1

    a1ec2a4556a9b3a9ca43d026278973a114644f32

    SHA256

    d9353cd8da2a767fb50f51adaee8721a37468cda3c6af47251b6c5adc9f0703a

    SHA512

    c0549aeea00c0a406394d21643ee8c42c2b9287bdd019c86acb2476cb30f3f60b76705835592825cd167412cbfa38a61490f2ee151bad8a1feb767082d27ee40

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Cab3776.tmp
    Filesize

    67KB

    MD5

    2d3dcf90f6c99f47e7593ea250c9e749

    SHA1

    51be82be4a272669983313565b4940d4b1385237

    SHA256

    8714e7be9f9b6de26673d9d09bd4c9f41b1b27ae10b1d56a7ad83abd7430ebd4

    SHA512

    9c11dd7d448ffebe2167acde37be77d42175edacf5aaf6fb31d3bdfe6bb1f63f5fdbc9a0a2125ed9d5ce0529b6b548818c8021532e1ea6b324717cc9bec0aaa5

    Download Submit

  • C:\Users\Admin\AppData\Local\Temp\Tar382A.tmp
    Filesize

    160KB

    MD5

    7186ad693b8ad9444401bd9bcd2217c2

    SHA1

    5c28ca10a650f6026b0df4737078fa4197f3bac1

    SHA256

    9a71fa0cb44aa51412b16a0bf83a275977ba4e807d022f78364338b99b3a3eed

    SHA512

    135be0e6370fd057762c56149526f46bf6a62fb65ef5b3b26ae01fa07b4c4e37188e203bd3812f31e260ec5cccff5924633dd55ab17e9fa106479783c2fb212b

    Download Submit